Oracle Cloud Infrastructure Documentation 

# This is an automatically generated code sample.
# To make this code sample work in your Oracle Cloud tenancy,
# please replace the values for any parameters whose current values do not fit
# your use case (such as resource IDs, strings containing ‘EXAMPLE’ or ‘unique_id’, and
# boolean, number, and enum parameters with values not fitting your use case).

import oci

# Create a default config using DEFAULT profile in default location
# Refer to
# https://docs.cloud.oracle.com/en-us/iaas/Content/API/Concepts/sdkconfig.htm#SDK_and_CLI_Configuration_File
# for more info
config = oci.config.from_file()


# Initialize service client with default config file
certificates_management_client = oci.certificates_management.CertificatesManagementClient(
    config)


# Send the request to service, some parameters are not required, see API
# doc for more info
create_certificate_authority_response = certificates_management_client.create_certificate_authority(
    create_certificate_authority_details=oci.certificates_management.models.CreateCertificateAuthorityDetails(
        name="EXAMPLE-name-Value",
        compartment_id="ocid1.test.oc1..<unique_ID>EXAMPLE-compartmentId-Value",
        certificate_authority_config=oci.certificates_management.models.CreateRootCaManagedExternallyConfigDetails(
            config_type="ROOT_CA_MANAGED_EXTERNALLY",
            certificate_pem="EXAMPLE-certificatePem-Value",
            version_name="EXAMPLE-versionName-Value"),
        description="EXAMPLE-description-Value",
        certificate_authority_rules=[
            oci.certificates_management.models.CertificateAuthorityIssuanceExpiryRule(
                    rule_type="CERTIFICATE_AUTHORITY_ISSUANCE_EXPIRY_RULE",
                    leaf_certificate_max_validity_duration="EXAMPLE-leafCertificateMaxValidityDuration-Value",
                    certificate_authority_max_validity_duration="EXAMPLE-certificateAuthorityMaxValidityDuration-Value")],
        certificate_revocation_list_details=oci.certificates_management.models.CertificateRevocationListDetails(
            object_storage_config=oci.certificates_management.models.ObjectStorageBucketConfigDetails(
                object_storage_bucket_name="EXAMPLE-objectStorageBucketName-Value",
                object_storage_object_name_format="EXAMPLE-objectStorageObjectNameFormat-Value",
                object_storage_namespace="EXAMPLE-objectStorageNamespace-Value"),
            custom_formatted_urls=["EXAMPLE--Value"]),
        kms_key_id="ocid1.test.oc1..<unique_ID>EXAMPLE-kmsKeyId-Value",
        external_key_description="EXAMPLE-externalKeyDescription-Value",
        freeform_tags={
            'EXAMPLE_KEY_eWbGA': 'EXAMPLE_VALUE_fshIEtIklfT5kGg4HKHm'},
        defined_tags={
            'EXAMPLE_KEY_Hl879': {
                'EXAMPLE_KEY_HoS6d': 'EXAMPLE--Value'}}),
    opc_request_id="FZX4PQN5DSE2YILIYHD0<unique_ID>",
    opc_retry_token="EXAMPLE-opcRetryToken-Value")

# Get the data from response
print(create_certificate_authority_response.data)